Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cloudfoundryCloud FoundryCFOUNDRY:0452C93923C85C6BABD7979903C0DC51
HistoryMar 31, 2017 - 12:00 a.m.

USN-3247-1: AppArmor vulnerability | Cloud Foundry

2017-03-3100:00:00
Cloud Foundry
www.cloudfoundry.org
24

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

EPSS

0.002

Percentile

59.7%

JSON

Severity

Medium

Vendor

Canonical Ubuntu

Versions Affected

  • Canonical Ubuntu 14.04

Description

Stéphane Graber discovered that AppArmor incorrectly unloaded some profiles when restarted or upgraded, contrary to expected behavior.

Affected Cloud Foundry Products and Versions

Severity is medium unless otherwise noted.

  • Cloud Foundry BOSH stemcells are vulnerable, including:
    • 3151.x versions prior to 3151.14
    • 3233.x versions prior to 3233.16
    • 3263.x versions prior to 3263.22
    • 3312.x versions prior to 3312.22
    • 3363.x versions prior to 3363.14
    • All other stemcells not listed.

Mitigation

OSS users are strongly encouraged to follow one of the mitigations below:

  • The Cloud Foundry project recommends upgrading the following BOSH stemcells:
    • Upgrade 3151.x versions to 3151.14 or later
    • Upgrade 3233.x versions to 3233.16 or later
    • Upgrade 3263.x versions to 3263.22 or later
    • Upgrade 3312.x versions to 3312.22 or later
    • Upgrade 3363.x versions to 3363.14 or later
    • All other stemcells should be upgraded to the latest version.

References

Related

openvas 6
veracode 1
suse 4
nessus 3
debiancve 1
cvelist 1
cve 1
prion 1
ubuntu 1
ubuntucve 1
nvd 1
openvas
openvas
Ubuntu: Security Advisory (USN-3247-1)
2017-03-29 00:00:00
openSUSE: Security Advisory for apparmor (openSUSE-SU-2017:0969-1)
2017-04-11 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:1151-1)
2021-04-19 00:00:00
veracode
veracode
Privilege Escalation
2020-12-06 04:06:31
suse
suse
Security update for apparmor (important)
2017-04-10 15:08:20
Security update for SLES 12-SP2 Docker image (important)
2017-10-11 03:08:09
Security update for SLES 12 Docker image (important)
2017-10-11 03:06:53
nessus
nessus
openSUSE Security Update : apparmor (openSUSE-2017-452)
2017-04-11 00:00:00
SUSE SLED12 / SLES12 Security Update : apparmor (SUSE-SU-2017:1151-1)
2017-05-04 00:00:00
Ubuntu 14.04 LTS / 16.04 LTS : AppArmor vulnerability (USN-3247-1)
2017-03-30 00:00:00
debiancve
debiancve
CVE-2017-6507
2017-03-24 07:59:00
cvelist
cvelist
CVE-2017-6507
2017-03-24 06:56:00
cve
cve
CVE-2017-6507
2017-03-24 07:59:00
prion
prion
Code injection
2017-03-24 07:59:00
ubuntu
ubuntu
AppArmor vulnerability
2017-03-28 00:00:00
ubuntucve
ubuntucve
CVE-2017-6507
2017-03-24 00:00:00
nvd
nvd
CVE-2017-6507
2017-03-24 07:59:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

EPSS

0.002

Percentile

59.7%

JSON
Related for CFOUNDRY:0452C93923C85C6BABD7979903C0DC51
openvas6veracode1suse4nessus3debiancve1cvelist1cve1prion1ubuntu1ubuntucve1nvd1